evolix/ansible-roles
22
2
Fork 2
Code Issues 61 Pull requests 18 Releases 33 Wiki Activity
ansible-roles/webapps/evoadmin-mail/tasks/ssl.yml
Jérémy Lecour ee21973371
All checks were successful
Ansible Lint |Total|New|Outstanding|Fixed|Trend |:-:|:-:|:-:|:-:|:-: |2777|524|2253|2462|:+1: Reference build: <a href="https://jenkins.evolix.org/job/gitea/job/ansible-roles/job/unstable/223//ansiblelint">Evolix » ansible-roles » unstable #223</a>
Details
gitea/ansible-roles/pipeline/head This commit looks good
Details
Use FQCN 
Fully Qualified Collection Name
2023-03-20 23:33:19 +01:00

33 lines
1 KiB
YAML
Raw Blame History

---
- name: ssl-cert package is installed
ansible.builtin.apt:
name: ssl-cert
state: present
tags:
- evoadmin-mail
- name: Create private key and csr for default site ({{ ansible_fqdn }})
ansible.builtin.command:
cmd: openssl req -newkey rsa:2048 -sha256 -nodes -keyout /etc/ssl/private/{{ evoadminmail_host }}.key -out /etc/ssl/{{ evoadminmail_host }}.csr -batch -subj "/CN={{ evoadminmail_host }}"
args:
creates: "/etc/ssl/private/{{ evoadminmail_host }}.key"
tags:
- evoadmin-mail
- name: Adjust rights on private key
ansible.builtin.file:
dest: /etc/ssl/private/{{ evoadminmail_host }}.key
owner: root
group: ssl-cert
mode: "0640"
tags:
- evoadmin-mail
- name: Create certificate for default site
ansible.builtin.command:
cmd: openssl x509 -req -days 3650 -sha256 -in /etc/ssl/{{ evoadminmail_host }}.csr -signkey /etc/ssl/private/{{ evoadminmail_host }}.key -out /etc/ssl/certs/{{ evoadminmail_host }}.crt
args:
creates: "/etc/ssl/certs/{{ evoadminmail_host }}.crt"
tags:
- evoadmin-mail
Reference in a new issue View git blame Copy permalink